Colleagues,
I have configured Windows XP to use a Heimdal KDC for user authentication.
All existing Windows users can authenticate against the KDC, user
mapping is ksetup /mapuser * *.
However, Windows does not create a new local user with the same name
as the Kerberos princical I try to
Victor Sudakov [EMAIL PROTECTED] wrote:
I have configured Windows XP to use a Heimdal KDC for user
authentication. All existing Windows users can authenticate against
the KDC, user
mapping is ksetup /mapuser * *.
However, Windows does not create a new local user with the same name
as the
Christopher D. Clausen wrote:
Victor Sudakov [EMAIL PROTECTED] wrote:
I have configured Windows XP to use a Heimdal KDC for user
authentication. All existing Windows users can authenticate against
the KDC, user
mapping is ksetup /mapuser * *.
However, Windows does not create a new local user
I'm looking at finding a new solution to syncing password between AD and
Kerberos. We had been using CEDAR for this and it's great but the
passwdHK dll on windows hates it if you pass in 8 bit ascii passsword.
So I was looking for alternatives. MS's SFU ssod looks ok but only
supports NIS
Classification: UNCLASSIFIED
Caveats: NONE
Various vendors for unix package kerberos with the operating system. Is
there a method to determine the version number for compliance purposes
with items such as advisories that are propagated to a CVE?
Jason Mackanick, CISSP
DISA FSO Support
hello all,
i am Sunil C. i have a domain named xx.com which has a KDC.
i also have a domain co.yy where my server is. there is no KDC in it.
users are in xx.com domain.
but my servers are in (co.yy) domain.
i had set up a test scenario with a user and a server in domain (xx.com)
since
Colin Simpson [EMAIL PROTECTED] wrote:
I'm looking at finding a new solution to syncing password between AD
and
Kerberos. We had been using CEDAR for this and it's great but the
passwdHK dll on windows hates it if you pass in 8 bit ascii passsword.
AD already is Kerberos. Why don't you just
I have configured Windows XP to use a Heimdal KDC for user authentication.
All existing Windows users can authenticate against the KDC, user
mapping is ksetup /mapuser * *.
However, Windows does not create a new local user with the same name
as the Kerberos princical I try to authenticate
I'm guessing using a single Kerberos KDC on Windows is going to be more
stable than some password syncronization process that neither vendor
fully supports.
CDC
Colin Simpson [EMAIL PROTECTED] wrote:
My only reason is we don't really trust window stability and try to
resist MS creeping onto
Colin Simpson [EMAIL PROTECTED] wrote:
I'm looking at finding a new solution to syncing password between AD
and
Kerberos. We had been using CEDAR for this and it's great but the
passwdHK dll on windows hates it if you pass in 8 bit ascii passsword.
AD already is Kerberos. Why don't
John == John Hascall [EMAIL PROTECTED] writes:
Also, what release are you
running? ... bug in krb5-1.3 ...
If you are seeing this behavior with a recent release, we would
appreciate hearing more details.
John 1.6.3
The error you are seeing is not consistent with my inspection of the
Hi folks,
I'd like to change the hostname of my kdc, but I'm worried that
this will break
kerberos. What steps should I take to ensure this doesn't happen?
I'm running
MIT kerberos version 1.6.2 under CentOS 5. I have a primary KDC and a
backup
KDC.
Thanks in advance for any advice.
John == John Hascall [EMAIL PROTECTED] writes:
Also, what release are you
running? ... bug in krb5-1.3 ...
If you are seeing this behavior with a recent release, we would
appreciate hearing more details.
John 1.6.3
The error you are seeing is not consistent with my inspection of
On Wed, Jan 09, 2008 at 10:53:11AM -0500, Mackanick, Jason W CTR DISA GIG-OP
wrote:
Classification: UNCLASSIFIED
Caveats: NONE
Various vendors for unix package kerberos with the operating system. Is
there a method to determine the version number for compliance purposes
with items such
Classification: UNCLASSIFIED
Caveats: NONE
Thanks Roberto,
That can help me with some direction. I have to provide guidance and automated
shell scripts for Sun, HP, AIX and Redhat. I new about the changelog for
Redhat, but didn't know about the krb5-config command.
Jason Mackanick,
My only reason is we don't really trust window stability and try to
resist MS creeping onto our servers :-)
Colin
On Wed, 2008-01-09 at 17:13 +, Christopher D. Clausen wrote:
Colin Simpson [EMAIL PROTECTED] wrote:
I'm looking at finding a new solution to syncing password between AD
and
[EMAIL PROTECTED] [EMAIL PROTECTED] writes:
I'd like to change the hostname of my kdc, but I'm worried that
this will break kerberos. What steps should I take to ensure this
doesn't happen? I'm running MIT kerberos version 1.6.2 under CentOS 5.
I have a primary KDC and a backup KDC.
Javier Palacios wrote:
I have configured Windows XP to use a Heimdal KDC for user authentication.
All existing Windows users can authenticate against the KDC, user
mapping is ksetup /mapuser * *.
However, Windows does not create a new local user with the same name
as the Kerberos
Christopher D. Clausen wrote:
I have configured Windows XP to use a Heimdal KDC for user
authentication. All existing Windows users can authenticate against
the KDC, user
mapping is ksetup /mapuser * *.
However, Windows does not create a new local user with the same name
as the
RA == Russ Allbery [EMAIL PROTECTED] writes:
RA [EMAIL PROTECTED] [EMAIL PROTECTED] writes:
I'd like to change the hostname of my kdc, but I'm worried that
this will break kerberos. What steps should I take to ensure this
doesn't happen? I'm running MIT kerberos version
20 matches
Mail list logo